1.In this paper we will take a close look at four most important modes in cryptographic algorithm:Elec- tronic Code Book mode(ECB),Cipher Block Chaining mode(CBC),Cipher Feedback mode(CFB)and Output Feed- back mode(OFB).
论文对四种最主要的加密算法模式,即电子编码本模式(Electronic Code Book,ECB)、密码分组链接模式(Cipher Block Chaining,CBC)、密码反馈模式(Cipher Feedback,CFB)和输出反馈模式(Output Feedback,OFB)进行了讨论。
2.Certain kind of attacks on some block ciphers may be efficiently resisted by mixing the round keys with a group of frequently changed numbers computed from system time and the counter of data blocks.The general form of such practical schemes has been discussed.Because the changing of certain part of round keys is often much faster than the operations of certain rounds of encryption (or decryption),the efficiencies of this kind of block cipher schemes are quite obvious.In security,as nearly every plaintext data block is encrypted with different keys,and as most attacking techniques have high demands of plaintext/ciphertext pairs,it is difficult for them to work in such a cipher scheme.This may result that a block cipher with time and counter parameters is secure even with cases that the number of round is largely reduced.As an important example of the entire solution,we introduce a cipher scheme TCR6 which has some satisfactory features in both security and efficiency.
通过将系统时间和数据组号混合到轮密钥之中,可以有效地防止一些对分组密码算法的攻击.文中探讨了这类实用的密码算法方案的一般模式.由于变更部分轮密钥通常比若干轮变换快很多,这类方案会有明显的效率优势.在安全方面,由于加密时所有明文组几乎都各自使用了不同的轮密钥,而绝大数攻击方法需要一定数量相同密钥加密的明密文对,从而使这些攻击方法不能奏效.这也许会导致这类带有时间组号参数的分组算法在减少迭代轮情况下仍然是安全的.做为例子,给出了一个在安全和效率方面均有良好性能的密码算法TCR6.
3.This paper analyzes the chaotic stream cipher proposed in “Chaos-based secure communication in a large community”, it finds that the frontal values of the encryption sequence of the stream cipher are not sensitive to the least significant bits of the key.
对Wang Shihong的“Chaos-based secure communication in a large community”一文提出的混沌序列密码算法进行了分析,发现该加密算法产生的加密乱数序列的前若干值对密钥低位比特的变化不敏感。
4.Especially in the VPN(Virtual Private Network)topology, because of the VPN’s tunneling, private routing and cipher technology, there are two embarrassments for the protection of the internal network. One is the internal services could be uncovered in the internet by the VPN’s tunneling, the other is firewall and IDS(Intrusion Detection System)could not completely analyze the network packet content because of the VPN’s private routing and cipher technology.
尤其在虚拟私有网络(VPN:Virtual Private Network)拓扑中,由于VPN的隧道技术、私有路由技术和加密技术,一方面使得内部服务群暴露在Internet中,另一方面增加防火墙和入侵检测系统(IDS:Intrusion Detection System)保护内部网络的难度。
5.After completely studying, analyzing and comparing all the cipher arithmetic and the PKI standard, according to the actual demand, the facture of the digital ID, SSL safe communication, coding/decoding operation, etc. of CA system have been basically achieved by basing on the Security Socket Layer (SSL) library and cipher algorithms library of the open source software library (OPENSSL) and developing with VC on the Windows platform.
在全面了解、分析、比较PKI标准和各种密码算法后,再根据实际需要,以开放源码软件包——OPENSSL的安全套接层(SSL)库和密码算法库为基础,在WINDOWS平台上以VC为开发工具,基本实现CA系统的数字证书的制作、SSL安全通讯、加解密操作等功能。
6.This paper discusses carefully public-key cipher technology,RSA encryption algorithm and identity authentication,presents how to process encryption and decryption in the electronic information exchange process,identity authentication etc.In this paper,it discusses the applications of public-key cipher technology in the electronic information exchange process offering security and secrecy.
论述了公开密钥密码技术、RSA加密算法、身份验证,以及电子信息交换过程中如何进行加密和解密、身份认证等,讨论了公开密钥密码技术在电子信息交换过程中安全性、保密性等方面的应用.
7.Based on the investigation to the principle and specifications of AES, an effective implementation of AES block cipher is completed and the document encryption and decryption is also completed by using Cipher Block Chaining (CBC).
在研究分析了AES加密原理的基础上着重说明了AES算法实现的具体步骤,并用C语言完整地实现了AES算法,并利用密文分组链接(CBC)方式将其用于对文件的加密/解密(密钥长度可选)。
8.A system of secret or cipher writing; a cipher.
密码一种秘密的或用密码书写的系统;密码
9.R block cipher is a new block cipher suitable for database encryption which is based on RC5 and RC6. R has a variable word size, a variable number of rounds, and a variabled-length secret key.
在RC5和RC6基础上提出了一个新的适合数据库加密的R分组加密算法,它具有分组长度、轮数和密钥长度均可变的特点。
10.Adopt commercial cipher chips, which have passed the detection by national cipher management department, to effectively ensure security and reliability of the product.
采用经过国家密码管理部门检测的商密芯片,产品的安全性和可靠性得到有效保障。
